Lucene search
K

13 matches found

OSV
OSV
added 2025/07/04 11:15 a.m.2 views

CVE-2025-7060

A vulnerability was found in Monitorr up to 1.7.6m. It has been classified as problematic. This affects an unknown part of the file assets/config/installation/mkdbajax.php of the component Installer. The manipulation of the argument datadir leads to improper input validation. It is possible to...

8.1CVSS6AI score
Exploits0References3
CNNVD
CNNVD
added 2025/07/04 12:0 a.m.3 views

Monitorr 输入验证错误漏洞

Monitorr is a web front-end for Monitorr open source. It is used to display the status of any web application or service in real time. An input validation error vulnerability exists in Monitorr 1.7.6m and earlier versions, which stems from improper input validation due to incorrect manipulation o...

8.1CVSS4.6AI score0.00437EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2025/07/04 12:0 a.m.4 views

PT-2025-27946 · Monitorr · Monitorr

Name of the Vulnerable Software and Affected Versions: Monitorr versions up to 1.7.6m Description: A vulnerability was found in Monitorr, affecting an unknown part of the file assets/config/ installation/mkdbajax.php of the component Installer. The manipulation of the datadir argument leads to...

4.3CVSS4.3AI score0.00437EPSS
Exploits1References6
Prion
Prion
added 2024/01/19 2:15 p.m.22 views

Out-of-bounds

A vulnerability was found in Monitorr 1.7.6m. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /assets/php/upload.php of the component Services Configuration. The manipulation of the argument fileToUpload leads to unrestricted upload. The...

5.8CVSS7AI score
Exploits7References3Affected Software1
0day.today
0day.today
added 2023/03/23 12:0 a.m.450 views

Monitorr 1.7.6m / 1.7.7d Remote Code Execution Exploit

This Metasploit module exploits an arbitrary file upload vulnerability and achieves remote code execution in the Monitorr application. Using a specially crafted request, custom PHP code can be uploaded and injected through endpoint upload.php because of missing input validation. Any user privileg...

9.8CVSS9.8AI score0.85785EPSS
Exploits8
0day.today
0day.today
added 2021/06/23 12:0 a.m.162 views

Monitorr 1.7.6m Bypass / Information Disclosure / Shell Upload Exploit

!/usr/bin/env ruby Exploit Title: Monitorr exploit toolkit Google Dorks: inurl:/assets/config/installation/register.php?action=register Author: noraj Alexandre ZANNI for SEC-IT http://secit.fr Author website: https://pwn.by/noraj/ Exploit source: https://github.com/sec-it/monitorr-exploit-toolkit...

9.8CVSS9.6AI score0.85785EPSS
Exploits9
CNVD
CNVD
added 2021/04/30 12:0 a.m.31 views

jonfinley Monitorr authorization bypass vulnerability

jonfinley Monitorr is a jonfinley open source application. Used for webfront will display the status of any Web application or service in real time. monitorr version 1.7.6m has an authorization bypass vulnerability, which can be exploited by attackers to create valid credentials...

9.8CVSS4.3AI score0.03318EPSS
Exploits3References1
0day.today
0day.today
added 2021/04/27 12:0 a.m.31 views

Montiorr 1.7.6m - File Upload to XSS Vulnerability

Exploit Title: Montiorr 1.7.6m - File Upload to XSS Exploit Author: Ahmad Shakla Software Link: https://github.com/Monitorr/Monitorr Tested on: Kali GNU/Linux 2020.2 Detailed Bug Description : https://arabcyberclub.blogspot.com/2021/04/monitor-176m-file-upload-to-xss.html An attacker can preform ...

7.4AI score
Exploits0
CNNVD
CNNVD
added 2021/04/12 12:0 a.m.4 views

jonfinley Monitorr 安全漏洞

jonfinley Monitorr is a jonfinley open source application. Used for webfront will display the status of any Web application or service in real time. monitorr version 1.7.6m has an authorization bypass vulnerability, which can be exploited by attackers to create valid credentials...

9.8CVSS5.6AI score0.03318EPSS
Exploits3References4
Positive Technologies
Positive Technologies
added 2021/02/10 12:0 a.m.0 views

PT-2021-11587 · Monitorr · Monitorr

Name of the Vulnerable Software and Affected Versions: Monitorr version 1.7.6m Description: The issue allows an unauthorized person to execute arbitrary code on the server-side via an insecure file upload in the upload.php file. This enables remote code execution, posing a significant risk...

9.8CVSS9.8AI score0.85785EPSS
Exploits8References11
Packet Storm
Packet Storm
added 2020/11/02 12:0 a.m.668 views

Monitorr 1.7.6m Remote Code Execution

!/usr/bin/python -- coding: UTF-8 -- Exploit Title: Monitorr 1.7.6m - Remote Code Execution Unauthenticated Date: September 12, 2020 Exploit Author: Lyhin's Lab Detailed Bug Description:...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2020/11/02 12:0 a.m.589 views

Monitorr 1.7.6m Authorization Bypass

!/usr/bin/python -- coding: UTF-8 -- Exploit Title: Monitorr 1.7.6m - Authorization Bypass Date: September 12, 2020 Exploit Author: Lyhin's Lab Detailed Bug Description:...

0.1AI score
Exploits0
Exploit DB
Exploit DB
added 2020/11/02 12:0 a.m.728 views

Monitorr 1.7.6m - Authorization Bypass

!/usr/bin/python -- coding: UTF-8 -- Exploit Title: Monitorr 1.7.6m - Authorization Bypass Date: September 12, 2020 Exploit Author: Lyhin's Lab Detailed Bug Description:...

9.8AI score
Exploits0
Rows per page
Query Builder